TY - GEN
T1 - Hardness preserving reductions via cuckoo hashing
AU - Berman, Itay
AU - Haitner, Iftach
AU - Komargodski, Ilan
AU - Naor, Moni
PY - 2013
Y1 - 2013
N2 - A common method for increasing the usability and uplifting the security of pseudorandom function families (PRFs) is to "hash" the inputs into a smaller domain before applying the PRF. This approach, known as "Levin's trick", is used to achieve "PRF domain extension" (using a short,e.g,fixed, input length PRF to get a variable-length PRF), and more recently to transform non-adaptive PRFs to adaptive ones. Such reductions, however, are vulnerable to a "birthday attack": after queries to the resulting PRF, where being the hash function range, a collision (i.e., two distinct inputs have the same hash value) happens with high probability. As a consequence, the resulting PRF is insecure against an attacker making this number of queries. In this work we show how to go beyond the birthday attack barrier, by replacing the above simple hashing approach with a variant of cuckoo hashing - a hashing paradigm typically used for resolving hash collisions in a table, by using two hash functions and two tables, and cleverly assigning each element into one of the two tables. We use this approach to obtain: (i) A domain extension method that requires just two calls to the original PRF, can withstand as many queries as the original domain size and has a distinguishing probability that is exponentially small in the non cryptographic work. (ii) A security-preserving reduction from non-adaptive to adaptive PRFs.
AB - A common method for increasing the usability and uplifting the security of pseudorandom function families (PRFs) is to "hash" the inputs into a smaller domain before applying the PRF. This approach, known as "Levin's trick", is used to achieve "PRF domain extension" (using a short,e.g,fixed, input length PRF to get a variable-length PRF), and more recently to transform non-adaptive PRFs to adaptive ones. Such reductions, however, are vulnerable to a "birthday attack": after queries to the resulting PRF, where being the hash function range, a collision (i.e., two distinct inputs have the same hash value) happens with high probability. As a consequence, the resulting PRF is insecure against an attacker making this number of queries. In this work we show how to go beyond the birthday attack barrier, by replacing the above simple hashing approach with a variant of cuckoo hashing - a hashing paradigm typically used for resolving hash collisions in a table, by using two hash functions and two tables, and cleverly assigning each element into one of the two tables. We use this approach to obtain: (i) A domain extension method that requires just two calls to the original PRF, can withstand as many queries as the original domain size and has a distinguishing probability that is exponentially small in the non cryptographic work. (ii) A security-preserving reduction from non-adaptive to adaptive PRFs.
UR - http://www.scopus.com/inward/record.url?scp=84873954199&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-36594-2_3
DO - 10.1007/978-3-642-36594-2_3
M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???
AN - SCOPUS:84873954199
SN - 9783642365935
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 40
EP - 59
BT - Theory of Cryptography - 10th Theory of Cryptography Conference, TCC 2013, Proceedings
T2 - 10th Theory of Cryptography Conference, TCC 2013
Y2 - 3 March 2013 through 6 March 2013
ER -